Or you can use a web server that supports SNI. You'd lose android 2.x and ie@winxp clients though, but those will be lost anyways soon due to outdated cipher suites and certificate hash algorithms
> configure multidomain ssls (which everytime they need to add a new domain, that means they have to reset the certificate for the other domains on the same ip),
Sorry should've called it SNI.